Security Now 946: CitrixBleed
Publisher |
TWiT TV
Media Type |
audio
Categories Via RSS |
News
Tech News
Technology
Publication Date |
Nov 01, 2023
Episode Duration |
02:01:35
  • What caused last week's connection interruption? Router was rebooting intermittently, but why?
  • David Redekop of AdamNetworks explained their enterprise network security solution aims to only allow known safe connections, blocking everything else.
  • iMessage gets Contact Key Verification to confirm new devices added to an account belong to the contact.
  • Public Interest Research Group asks Microsoft to extend Windows 10 support beyond 2025.
  • HackerOne breach bounties surpass $300M total payout.
  • CISA releases free Logging Made Easy toolkit to enhance Windows logging capabilities.
  • SpinRite 6.1 pre-release 2 published, likely final pre-release with some testing remaining before full launch.
  • Moving the Internet fully to IPv6 likely won't happen until IPv4 addresses are fully consumed.
  • Open source projects struggle with costly code signing certificates.
  • Deep dive into CitrixBleed vulnerability allowing authentication bypass.

Show Notes - 946-Notes.pdf">https://www.grc.com/sn/SN-946-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

This episode currently has no reviews.

Submit Review
This episode could use a review!

This episode could use a review! Have anything to say about it? Share your thoughts using the button below.

Submit Review